Lead Information Security Engineer – Vulnerability Management

🔥 0 minutes ago

🇺🇸 United States – Remote

💵 $82.1k - $172.5k / year

⏰ Full Time

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

🦅 H1B Visa Sponsor

info
Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Fifth Third Bank

Fifth Third Bank

10,000+ employees

Founded 1858

🏦 Banking

Banking

Fifth Third Bank is a diversified financial services company offering a wide range of banking and financial products and services. It provides personal banking solutions such as checking and savings accounts, credit and debit cards, and identity theft protection. Borrowers can access various loans and mortgage options, while investors benefit from investment products like ETFs, mutual funds, and stocks. The bank also provides a robust set of services for businesses and commercial clients, including cash management, treasury management, and specialized lending solutions. Additionally, Fifth Third offers wealth management services with private banking, trust, and estate services. Customers can benefit from Fifth Third's online and mobile banking platforms, enabling them to bank anywhere at any time. Fifth Third Bank is focused on delivering seamless banking experiences with a strong emphasis on customer convenience and security.

📋 Description

• Serve as the primary escalation point and subject matter expert for the most complex and high-risk remediation issues across infrastructure, cloud, containers, applications, and code. • Provide advanced technical guidance on remediation paths, exploitability assessment, scanning output interpretation, and multi-layered False Positive evaluations. • Stay up to date on the latest vulnerabilities, exploitation techniques, and exploits. • Independently own intake, investigation, escalation, and mitigation reviews for high-impact items such as critical vulnerabilities, emerging threats, and executive escalations. • Drive and own sophisticated remediation planning that includes dependency mapping, coordinated timelines, and long-term fixes. • Perform analytical reviews of large datasets to identify meaningful trends and shape targeted remediation campaigns for the highest areas of risk. • Conduct proactive follow-up on stalled plans and escalate appropriately when remediation does not progress. • Deliver expert-level communication to technical and non-technical stakeholders to ensure clarity of risk, urgency, and remediation requirements. • Oversee False Positive determinations, Exception requests, and Risk Acceptance submissions to ensure accuracy, thoroughness, and adherence to governance standards. • Partner with teams across Information Security and application teams across the Bank to ensure complex issues are addressed correctly and efficiently. • Report and track vulnerability metrics, KPIs, and KRIs with proactive escalations to maintain risk within acceptable appetite. • Create impactful presentations to deliver key metrics and data to senior leadership. • Conceptualize, design, and update dashboards and workflows utilizing scripting, Power Automate, PowerBI, ServiceNOW, Brinqa, and/or other tools/processes as appropriate. • Utilize macros, scripting, formulas, and optimizations for workflows in Excel. • Work within Agile framework to deliver incremental value. • Proactively identify opportunities for, and volunteer to, improve EVM processes and demonstrate measurable impact towards reducing inefficiencies. • Build and maintain standards, playbooks, and repeatable processes to improve the efficiency and maturity of the vulnerability management program. • Mentor junior and mid‑level engineers through hands-on support, structured coaching, and direct involvement in complex cases. • Contribute to the evolution of the Program and contribute to additional duties and projects as appropriate.

🎯 Requirements

• At least 6 years of related and recent hands-on experience in Vulnerability Management. • Strong attention to detail, and advanced understanding of security architecture, networking, operating systems, identity, and cloud services. • Demonstrated experience in risk articulation, and remediation strategies across common technology stacks. • Demonstrated experience triaging and prioritizing complex findings from scanning tools and translating technical findings into actionable remediation guidance. • Strong written and verbal communication skills, including the ability to communicate effectively with senior leaders and with deeply technical teams. • Proven analytical and problem-solving skills, including the ability to interpret large datasets and identify meaningful trends. • Experience collaborating across multiple teams and influencing outcomes without direct authority. • Bachelor’s degree in computer science/information systems or equivalent combination of education and experience. • Certifications such as Security+, CISSP, CISM, GIAC, or cloud certifications (AWS preferred).

🏖️ Benefits

• Comprehensive benefits • Differentiated compensation offerings • Incentive compensation plan based on performance

Apply Now

Similar Jobs

🔥 11 minutes ago

Trinity Health

10,000+ employees

📚 Education

🤝 Non-profit

🌍 Social Impact

Manager of Information Security Risk and Consulting at Trinity Health overseeing risk management programs and leading security risk professionals in Michigan.

🔥 11 minutes ago

Trinity Health

10,000+ employees

📚 Education

🤝 Non-profit

🌍 Social Impact

Senior Security Risk Management Consultant driving enterprise-wide security risk management strategies. Partnering with stakeholders and senior leadership to assess and mitigate cybersecurity risks at Trinity Health.

🔥 27 minutes ago

KeyBank

10,000+ employees

🏦 Banking

💸 Finance

💳 Fintech

Application & Cloud Security Specialist responsible for application security assessments and cloud security reviews. Collaborate with development teams and integrate security into CI/CD pipelines at KeyBank.

🔥 28 minutes ago

Ensemble Health Partners

5001 - 10000

⚕️ Healthcare Insurance

☁️ SaaS

🏢 Enterprise

Cybersecurity Engineer designing and managing secure cloud infrastructure for Ensemble Health Partners. Engaging in IT projects and responding to security incidents as necessary.

🇺🇸 United States – Remote

💵 $84k - $132.3k / year

💰 Private Equity Round on 2022-03

⏰ Full Time

🟡 Mid-level

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

🔥 1 hour ago

Second Front Systems

51 - 200

☁️ SaaS

🏛️ Government

Cybersecurity Assessment Engineer ensuring security posture of cloud platforms at Second Front Systems. Engaging with DevOps and Mission Success teams, focusing on vulnerability assessments and incident response.